thecyberexpress

Ransomware Attacks Have Soared in 2025 as New Leaders Emerge

Ransomware attacks have soared 50% in 2025 despite major changes among the leading ransomware groups, according to a new Cyble report. Through October 21, there have been 5,010 ransomware attacks ...
thecyberexpress

Compromised YouTube Accounts Used to Distribute Infostealer Malware

More than 3,000 malicious YouTube videos were used to distribute infostealer malware, according to a new report detailing the operation. Dubbed the “YouTube Ghost Network” by Check Point Research, the ...
thecyberexpress

Brazilian “Caminho” Loader Turns Images into Malware Delivery Chain

A newly identified loader dubbed “Caminho” (Portuguese for “path”) has emerged as a sophisticated Loader-as-a-Service platform that uses Least Significant Bit (LSB) steganography to conceal malicious ...
thecyberexpress

How “Unseeable Prompt Injections” Threaten AI Agents

A new form of attack is targeting browsers with built-in AI assistants. Researchers at Brave have found that seemingly harmless screenshots and web pages can hide malicious instructions that hijack ...
thecyberexpress

Vidar Stealer 2.0 Boosts Infostealer’s Credential Theft and Evasion Capabilities

Vidar Stealer 2.0 has been released, and the updated infostealer claims to offer improved performance with advanced credential stealing and evasion abilities, features that will necessitate even ...
thecyberexpress

Russian State-Sponsored COLDRIVER Group Deploys New Malware After Exposure of LOSTKEYS

Following the public disclosure of its LOSTKEYS malware in May 2025, the Russian state-sponsored threat group known as COLDRIVER, also tracked under aliases such as UNC4057, Star Blizzard, and ...
thecyberexpress

CISA Adds Microsoft, Apple and Oracle Vulnerabilities to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities. CISA ...
thecyberexpress

Capita Ransomware Fine: ICO Hits UK Outsourcing Giant with Record £14 Million Penaltyc

Capita has been handed a record ransomware fine of £14 million by the Information Commissioner’s Office (ICO) after a 2023 cyberattack exposed the personal data of 6.6 million people. The Capita ...
thecyberexpress

GhostBat RAT Returns with Fake RTO Apps Targeting Indian Android Users with Telegram Bot-Driven Malware

A new trend of Android malware is sweeping across India, leveraging the guise of Regional Transport Office (RTO) apps to steal financial data, mine cryptocurrency, and exfiltrate SMS messages, all ...
thecyberexpress

F5 Reveals Nation-State Breach as CISA Orders Agencies to Secure F5 Environments

Security and application delivery vendor F5 revealed today in an SEC filing that a nation-state threat actor had “long-term, persistent access” to some of the company’s most critical environments. The ...
thecyberexpress

Asahi Group Cyberattack Forces Delay in Financial Reporting

Japanese beverage and food giant Asahi Group Holdings has confirmed that a ransomware attack has disrupted its operations and may have led to a leak of personal and financial data. The Asahi Group ...
thecyberexpress

Why the Netherlands Invoked Emergency Powers Over Chinese Chipmaker Nexperia

The Dutch government has invoked the Goods Availability Act (Wet Beschikbaarheid Goederen) to assert control over decisions made by Chinese-owned semiconductor firm Nexperia, citing risks to national ...